Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
51525354555657585960
48
To meet the requirements, configure the firewall as an HTTPS server and apply for a certificate for the
firewall. The name of the certificate authority (CA) that issues certificates to the firewall and the host is CA
server.
This example uses a Windows server as the CA that has the Simple Certificate Enrollment Protocol (SCEP)
component installed.
Before proceeding with the following configuration, make sure that the firewall, the host, and CA can
reach each other.
Figure 40 Network diagram
289BConfiguring a PKI entity
1. Select VPN > Certificate Management > Entity from the navigation tree.
2. Click Add.
The page for adding a PKI entity appears.
3. Configure a PKI entity as shown in 589HFigure 41.
a. Enter en as the PKI entity name.
b. Enter http-server1 as the common name.
c. Enter ssl.security.com in the FQDN field.
4. Click Apply.
Figure 41 Adding a PKI entity